Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-11-2022
Exécuté par phili (16-11-2022 19:18:48)
Exécuté depuis C:\Users\phili\Desktop
Microsoft Windows 10 Professionnel Version 22H2 19045.2251 (X64) (2022-11-09 22:13:14)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-4140058165-209461574-1164879481-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4140058165-209461574-1164879481-503 - Limited - Disabled)
Invité (S-1-5-21-4140058165-209461574-1164879481-501 - Limited - Disabled)
phili (S-1-5-21-4140058165-209461574-1164879481-1001 - Administrator - Enabled) => C:\Users\phili
WDAGUtilityAccount (S-1-5-21-4140058165-209461574-1164879481-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
Advanced IP Scanner 2.5.1 (HKLM-x32\...\{CDBD50E5-B254-45A0-9A99-BEAECBB8BCF9}) (Version: 2.5.4594.1 - Famatech)
Apple Mobile Device Support (HKLM\...\{74CC99EB-7DC0-4CB0-847A-F8C2FE39690C}) (Version: 14.5.0.7 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
AppLogLibSetup (HKLM-x32\...\{52FB0C8F-DF05-4C61-AEB6-18C55F8C385F}) (Version: 1.0.3.0 - Brother Industries Ltd.) Hidden
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.16 - Arduino LLC)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.2183 - Microsoft Corporation)
Bing Wallpaper (HKLM-x32\...\{20F4FF11-8953-4A72-A7D8-629B64FCF92A}) (Version: 2.0.0.0 - Microsoft Corporation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BrLauncher (HKLM-x32\...\{88FCD471-DBBF-4A75-8066-ACACE05DE3CF}) (Version: 2.0.14.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{06e7b8fa-f412-4f47-a8d7-74d4a780099e}) (Version: 10.3.1.1 - Brother Industries, Ltd.)
Brother iPrint&Scan (HKLM-x32\...\{79F6CD87-9761-414F-87C4-79767318CBFA}) (Version: 10.3.1.1 - Brother Industries, Ltd.) Hidden
Brother PCFax Driver (HKLM-x32\...\{56BA05BD-7A67-4EF8-85A7-8C6528AEE2AC}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{661AF054-5C26-45F8-B2C6-45A1069AA396}) (Version: 1.2.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Setting Tool (HKLM-x32\...\{8DA2E2DC-C572-4F87-89FC-833DB588CC7B}) (Version: 1.6.0076 - Brother Industries, Ltd.)
Brother Scanner Driver (HKLM-x32\...\{7BCDF519-3918-4AB8-8A28-E5A9DBA94E99}) (Version: 1.0.20.1 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{D0F69DE9-EE0B-4A7A-8248-6D5EC97D171C}) (Version: 1.0.23.0 - Brother Industries Ltd.) Hidden
CalcTape (HKLM-x32\...\{FC6C4F5C-9539-40F4-999F-5586697DA327}) (Version: 6.0.4 - schoettler Software GmbH)
calibre 64bit (HKLM\...\{A51C2A72-1A27-40EA-8718-D6F1AD6D9B79}) (Version: 6.8.0 - Kovid Goyal)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.95.69 - Conexant)
ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Version: 4.6.1.1 - Brother Industries, Ltd.) Hidden
ES Status Monitor (HKLM-x32\...\{2C719B89-EA69-4157-BCB4-43728F573297}) (Version: 1.04.0022 - Brother Industries, ltd.) Hidden
eSoftTools 7z Password Recovery v3.0 (HKLM\...\{9331BD2D-8088-4EC6-A49B-85D0400C5050}_is1) (Version: 3.0.0.0 - eSoftTools Software)
FreeFileSync [Edition Donation] (HKLM-x32\...\FreeFileSync_is1) (Version: 11.27 - FreeFileSync.org)
GIMP 2.10.32-1 (Utilisateur courant) (HKU\S-1-5-21-4140058165-209461574-1164879481-1001\...\GIMP-2_is1) (Version: 2.10.32 - The GIMP Team)
Glary Utilities 5.197 (HKLM-x32\...\Glary Utilities 5) (Version: 5.197.0.226 - Glarysoft Ltd)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 66.0.3.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 107.0.5304.107 - Google LLC)
Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
HttpToUsbBridge (HKLM-x32\...\{6FF1DBC1-A313-460D-B1F2-6444D2F01DEE}) (Version: 2.0.18.1 - Brother Industries Ltd.)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{32A56A06-5D92-4CF3-A2AB-43F7A58A657E}) (Version: 20.60.0.1530 - Intel Corporation) Hidden
iTunes (HKLM\...\{C3E17CF7-4BCC-4C66-BE6C-55FA198B7337}) (Version: 12.11.3.17 - Apple Inc.)
Java 8 Update 321 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180321F0}) (Version: 8.0.3210.7 - Oracle Corporation)
kDrive (HKLM-x32\...\kDrive) (Version: 3.3.5.20220608 - Infomaniak Network SA)
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.28.542 - Logitech)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{d5c53162-d8b4-4547-8a40-917a25c0172e}) (Version: 20.60.0 - Intel Corporation)
Logitech Options (HKLM\...\LogiOptions) (Version: 9.40.86 - Logitech)
Lupas Rename 2000 v5.0 Release (HKLM-x32\...\Lupas Rename 2000_is1) (Version: - Ivan Anton Albarracin)
Microsoft .NET Core Host - 3.1.31 (x64) (HKLM\...\{97ECD882-397F-4825-B7FB-1B9DF76B7DD9}) (Version: 24.124.31813 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.31 (x64) (HKLM\...\{4CF84AED-891D-4ECD-93FB-94B58A43F454}) (Version: 24.124.31813 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.31 (x64) (HKLM\...\{337A821B-2ED5-42BC-8699-238B600CBB73}) (Version: 24.124.31813 - Microsoft Corporation) Hidden
Microsoft Bing Service (HKLM-x32\...\{27990F25-A90A-4CE5-868E-1A1BB70A58EE}) (Version: 2.0.0.7 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.42 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - fr-fr (HKLM\...\ProPlus2021Retail - fr-fr) (Version: 16.0.15726.20202 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{80F1AF52-7AC0-42A3-9AF0-689BFB271D1D}) (Version: 3.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23026 (HKLM\...\{BC958BD2-5DAC-3862-BB1A-C1BE0790438D}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23026 (HKLM\...\{0D3E9E15-DE7A-300B-96F1-B4AF12B96488}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.31 (x64) (HKLM\...\{F3479C10-2CEA-4C17-8C49-5AD92965254D}) (Version: 24.124.31813 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.31 (x64) (HKLM-x32\...\{2c0fd312-a570-439d-8831-42fe66080acc}) (Version: 3.1.31.31813 - Microsoft Corporation)
Module Signal Spam pour Office Outlook (HKLM-x32\...\{A077D097-ECC1-4E74-A4AA-8FFDCF687140}) (Version: 1.2.0 - Signal Spam)
Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 107.0 (x64 fr)) (Version: 107.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla)
NetworkRepairTool (HKLM-x32\...\{96CEE8C3-B934-48A4-ADA6-91B7CE8A5002}) (Version: 1.2.17.0 - Brother Industries, Ltd.) Hidden
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.4.6 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.15726.20202 - Microsoft Corporation) Hidden
PC-FAXReceive (HKLM-x32\...\{9C609AF4-9CC1-45F0-B954-29DF7DD40329}) (Version: 1.8.004.0 - Brother Insutries Ltd.) Hidden
PCFaxTx (HKLM-x32\...\{FD9C7169-7728-477A-91D1-AF3822CE494F}) (Version: 3.7.5.1 - Brother Industries Ltd.) Hidden
ProtonVPN (HKLM-x32\...\{EE88024E-679E-4F98-902E-1B4272DB36EA}) (Version: 2.2.0 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 2.2.0) (Version: 2.2.0 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{87BDF456-9882-44E6-8FFC-F73B83E42EAD}) (Version: 1.1.4 - Proton Technologies AG)
ProtonVPNTun (HKLM-x32\...\{B1EBF050-CC3E-45B0-9DE5-339C6241F3DA}) (Version: 0.13.1 - Proton Technologies AG)
RemoteSetup (HKLM-x32\...\{FAB8A30A-B074-48F9-9D73-5E9A757403F8}) (Version: 3.10.2.0 - Brother Industries Ltd.) Hidden
Revo Uninstaller 2.3.8 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.8 - VS Revo Group, Ltd.)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
ScriptRunner Bootstrap Installer (HKLM-x32\...\{dbb5c70b-c059-4d0f-843a-7ecabdca7d98}) (Version: 2.20.0.17 - SolarWinds) Hidden
ScriptRunner.Installer 2.20.0.17 (HKLM-x32\...\{FB4BBDD0-0663-41EE-B8C9-3901F804A68A}) (Version: 2.20.0.17 - SolarWinds) Hidden
Sigil 1.9.20 (HKLM\...\Sigil_is1) (Version: 1.9.20 - Sigil-Ebook)
SoftwareUpdateNotification (HKLM-x32\...\{C376DCB0-AFD1-44AF-9BBD-F178FC321A84}) (Version: 1.0.20.0 - Brother Industries, Ltd.) Hidden
StatusMonitor (HKLM-x32\...\{D9584EB4-1D28-4BD1-8F81-6E097C0827EE}) (Version: 1.33.1.0 - Brother Industries, Ltd.) Hidden
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.33.7 - TeamViewer)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
WhatsApp (HKU\S-1-5-21-4140058165-209461574-1164879481-1001\...\WhatsApp) (Version: 2.2212.8 - WhatsApp)
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Wondershare PDFelement ( Version 9.1.5 ) (HKLM\...\{BC2AC233-DEF1-4D05-B6B8-6B46AA69E885}_is1) (Version: 9.1.5 - Wondershare)

Packages:
=========
Beauty of China PREMIUM -> C:\Program Files\WindowsApps\Microsoft.BeautyofChinaPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2022-08-13] (Microsoft Corporation)
Clouds PREMIUM -> C:\Program Files\WindowsApps\Microsoft.CloudsPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2022-08-13] (Microsoft Corporation)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-08-01] (Microsoft Corporation)
Curious Perspectives -> C:\Program Files\WindowsApps\MicrosoftCorporationII.CuriousPerspectives_1.0.0.0_neutral__8wekyb3d8bbwe [2022-08-01] (Microsoft Corp.)
Earth from Above PREMIUM -> C:\Program Files\WindowsApps\Microsoft.EarthfromAbovePREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2022-08-01] (Microsoft Corporation)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_2.3.12.0_x64__et10x9a9vyk8t [2022-11-10] (Yair A) [Startup Task]
kDrive Windows Explorer Extension Package -> C:\Program Files\WindowsApps\Infomaniak.kDrive.Extension_3.3.5.0_x64__e4e5bp7s792f4 [2022-11-11] (Infomaniak Network SA)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2245.5.0_x64__cv1g1gvanyjgm [2022-11-16] (WhatsApp Inc.) [Startup Task]

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{005887F0-2772-3744-8078-3F385EDEBDA2}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{356B8708-C7A7-30B0-B91A-169F137B05A4}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{3A4561FA-433C-32EC-A6D3-A3432EC7FC92}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{73102a6c-8192-499d-91bd-689d18fcf829} -> [kDrive] => C:\Users\phili\kDrive [2022-11-11 17:33]
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{8547853E-0B7B-3AAC-BE67-01C158EE5BE6}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0xFD1D216FA0E7D701D7B9216FA0E7D701010000000100000000000000 => Pas de fichier
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{B3DEF8B6-0188-31BE-B784-313B4218D9F6}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{B4D25E30-0D53-3627-885D-A24E7ABD137E}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{B7C0EDAA-096F-3E55-A865-DBAC05CFAC72}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{d936918b-9c4b-555e-074a-c79314be04e1}\localserver32 -> C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe (Proton Technologies AG -> ProtonVPN)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{DEC3C63F-3E59-42C5-8ACC-F3E8E703496B}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\adxloader64.dll (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{E7B507D4-30DB-3A08-BAB0-ADA1088F53AA}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{F430AC54-0883-3B1F-9BFE-F281135C2B25}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
CustomCLSID: HKU\S-1-5-21-4140058165-209461574-1164879481-1001_Classes\CLSID\{FCD7801D-7E84-3692-8E4F-D538459A078D}\InprocServer32 -> C:\Users\phili\AppData\Local\Signal Spam\Module Signal Spam pour Office Outlook\SignalSpam.DLL (VERIFROM SAS -> Signal Spam)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\66.0.3.0\drivefsext.dll [2022-11-07] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\66.0.3.0\drivefsext.dll [2022-11-07] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\66.0.3.0\drivefsext.dll [2022-11-07] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\66.0.3.0\drivefsext.dll [2022-11-07] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ OCError] -> {0960F090-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\kDrive\shellext\OCOverlays.dll [2022-06-08] (Infomaniak Network SA) [Fichier non signé]
ShellIconOverlayIdentifiers: [ OCOK] -> {0960F092-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\kDrive\shellext\OCOverlays.dll [2022-06-08] (Infomaniak Network SA) [Fichier non signé]
ShellIconOverlayIdentifiers: [ OCOKShared] -> {0960F093-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\kDrive\shellext\OCOverlays.dll [2022-06-08] (Infomaniak Network SA) [Fichier non signé]
ShellIconOverlayIdentifiers: [ OCSync] -> {0960F094-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\kDrive\shellext\OCOverlays.dll [2022-06-08] (Infomaniak Network SA) [Fichier non signé]
ShellIconOverlayIdentifiers: [ OCWarning] -> {0960F096-F328-48A3-B746-276B1E3C3722} => C:\Program Files (x86)\kDrive\shellext\OCOverlays.dll [2022-06-08] (Infomaniak Network SA) [Fichier non signé]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2020-11-02] (Notepad++ -> )
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\66.0.3.0\drivefsext.dll [2022-11-07] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-03-04] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [PDFelement.ContextMenu] -> {ea6c980d-7823-3752-88ac-d43b3a873d20} => C:\Program Files\Common Files\Wondershare\PDFelement9\Shell Extensions\PEShellContextMenu4.exe [2022-10-27] (Wondershare Technology Group Co.,Ltd -> Wondershare)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-03-04] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers3: [OCContextMenuHandler] -> {841A0AAD-AA11-4B50-84D9-7F8E727D77D7} => C:\Program Files (x86)\kDrive\shellext\OCContextMenu.dll [2022-06-08] (Infomaniak Network SA) [Fichier non signé]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\66.0.3.0\drivefsext.dll [2022-11-07] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2020-03-04] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\phili\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Modules chargés (Avec liste blanche) =============

2016-11-25 10:18 - 2016-11-25 10:18 - 000139264 _____ () [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2022-01-26 19:00 - 2022-01-26 19:00 - 000542720 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\BrMonitor.dll
2016-06-27 22:58 - 2016-06-27 22:58 - 000275968 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommSdk.dll
2022-11-11 17:29 - 2022-06-08 07:39 - 001584128 _____ () [Fichier non signé] C:\Program Files (x86)\kDrive\kDrive_csync.dll
2022-11-11 17:29 - 2022-06-08 07:43 - 002285568 _____ () [Fichier non signé] C:\Program Files (x86)\kDrive\kDrivesync.dll
2022-11-11 17:29 - 2022-02-24 14:11 - 000038400 _____ () [Fichier non signé] C:\Program Files (x86)\kDrive\qt6keychain.dll
2022-11-11 17:29 - 2022-05-12 10:04 - 000129536 _____ () [Fichier non signé] C:\Program Files (x86)\kDrive\zlib1.dll
2022-11-16 18:25 - 2022-11-16 18:26 - 100471808 _____ () [Fichier non signé] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2245.5.0_x64__cv1g1gvanyjgm\WhatsApp.dll
2022-11-16 18:25 - 2022-11-16 18:26 - 008576000 _____ () [Fichier non signé] C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2245.5.0_x64__cv1g1gvanyjgm\WhatsAppNative.dll
2022-11-09 23:05 - 2022-11-09 23:05 - 000372736 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\d0512513957bdfea8f297b07801d57b5\Interop.CxHDAudioAPILib.ni.dll
2022-11-09 23:05 - 2022-11-09 23:05 - 000018944 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\c4e2ca37be50157547ef9a8d3ef7d375\Interop.CxUtilSvcLib.ni.dll
2019-11-12 16:43 - 2017-06-20 14:17 - 000089600 _____ () [Fichier non signé] C:\WINDOWS\system32\BrNetSti.dll
2019-11-12 16:43 - 2005-04-22 13:36 - 000143360 _____ () [Fichier non signé] C:\WINDOWS\system32\BrSNMP64.dll
2019-11-11 11:19 - 2018-03-13 10:21 - 001173504 _____ (Conexant Systems, Inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll
2022-02-03 08:47 - 2021-12-26 15:00 - 000093696 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2022-06-08 07:43 - 2022-06-08 07:43 - 000715264 _____ (Infomaniak Network SA) [Fichier non signé] C:\Program Files (x86)\kDrive\shellext\OCContextMenu.dll
2022-06-08 07:43 - 2022-06-08 07:43 - 001487872 _____ (Infomaniak Network SA) [Fichier non signé] C:\Program Files (x86)\kDrive\shellext\OCOverlays.dll
2022-10-29 13:01 - 2022-10-29 13:01 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2022-10-29 13:01 - 2022-10-29 13:01 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll
2022-11-11 17:29 - 2022-05-31 08:00 - 003473920 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\kDrive\libcrypto-1_1-x64.dll
2022-11-11 17:29 - 2022-05-31 08:00 - 000688640 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\kDrive\libssl-1_1-x64.dll

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} [26]
AlternateDataStreams: C:\ProgramData\TEMP:9A870F8B [268]

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_321\bin\ssv.dll [2022-02-03] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_321\bin\jp2ssv.dll [2022-02-03] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-01] (Microsoft Corporation -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-4140058165-209461574-1164879481-1001\...\localhost -> localhost

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2019-11-11 11:08 - 2019-11-11 11:07 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Calibre2\;C:\Program Files\dotnet\;
HKU\S-1-5-21-4140058165-209461574-1164879481-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\phili\AppData\Local\Microsoft\BingWallpaperApp\WPImages\20221115.jpg
DNS Servers: 192.168.0.254 - 1.1.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{7265786C-915D-4E2B-920E-C1EB083DCE8B}C:\program files (x86)\netgear\prosafe plus utility\prosafe plus utility.exe] => (Allow) C:\program files (x86)\netgear\prosafe plus utility\prosafe plus utility.exe => Pas de fichier
FirewallRules: [TCP Query User{10FD3717-F57B-44FD-B2F9-AD4E4495FB61}C:\program files (x86)\netgear\prosafe plus utility\prosafe plus utility.exe] => (Allow) C:\program files (x86)\netgear\prosafe plus utility\prosafe plus utility.exe => Pas de fichier
FirewallRules: [UDP Query User{858019FD-E26D-4A49-A939-1080664EDE95}C:\program files (x86)\netgear\prosafe plus utility\nsdpmanager.exe] => (Allow) C:\program files (x86)\netgear\prosafe plus utility\nsdpmanager.exe => Pas de fichier
FirewallRules: [TCP Query User{4F7F5B69-DB6B-4DFA-A859-8FBD30336FF3}C:\program files (x86)\netgear\prosafe plus utility\nsdpmanager.exe] => (Allow) C:\program files (x86)\netgear\prosafe plus utility\nsdpmanager.exe => Pas de fichier
FirewallRules: [UDP Query User{7F7F4EDA-5705-4074-A144-0F6F02494251}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => (Allow) C:\program files (x86)\qnap\qfinder\qfinderpro.exe => Pas de fichier
FirewallRules: [TCP Query User{340612D9-93ED-4872-8315-73926D14C485}C:\program files (x86)\qnap\qfinder\qfinderpro.exe] => (Allow) C:\program files (x86)\qnap\qfinder\qfinderpro.exe => Pas de fichier
FirewallRules: [{705637B4-4366-465C-9FE9-A8DD1BE214AB}] => (Allow) LPort=7878
FirewallRules: [{9FA78DE9-B751-4B4B-B6D5-73C688F51401}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{C21DD2BE-6C51-4D48-8902-36C953F6837D}C:\program files\calibre2\calibre.exe] => (Allow) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [TCP Query User{44D1AD24-C9A4-4A84-A88A-6CD40293DF06}C:\program files\calibre2\calibre.exe] => (Allow) C:\program files\calibre2\calibre.exe (Kovid Goyal -> )
FirewallRules: [{70916404-86AE-4C0C-96CA-5F5D019FF219}] => (Allow) C:\Program Files\Bitdefender Home Scanner\hvasrv.exe => Pas de fichier
FirewallRules: [{31D7AE92-1F7F-4FDC-8AB5-8BB4906AC3A5}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{70ED2ED4-B7E5-4DCC-8FEE-032B04E2B731}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{363BEB90-1687-4EBB-B828-11EC261E5AF0}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{089F4054-5BB2-4ACD-AC57-F402F354C639}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1AFCC31D-6303-4D21-AB0E-1EB12180A75E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{00B75213-571E-4B62-BDD0-FBB8B66B94D4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EA4FE4D5-EC64-42B3-BB73-EBC7FBCF182A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A2C1F49-04AA-4D3E-8052-84B6ADE26552}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2F40C8A2-2B18-4EE0-9511-BEA932BD6230}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9161279B-8232-4D6C-B309-6286CF965B7F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Points de restauration =========================

14-11-2022 08:56:04 Installed Omron Health Management Software.

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (11/16/2022 06:20:53 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.

Error: (11/16/2022 11:02:46 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-I4NCEFM)
Description: Impossible de fermer l’application ou le service « Microsoft Office SDX Helper ».

Error: (11/16/2022 10:50:06 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_ON.

Error: (11/15/2022 05:09:15 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary EPMVolFl.

System Error:
Le fichier spécifié est introuvable.
.

Error: (11/13/2022 12:59:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ensserver.exe, version : 0.0.0.0, horodatage : 0x622838d2
Nom du module défaillant : ucrtbase.dll, version : 10.0.19041.789, horodatage : 0x82dc99a2
Code d’exception : 0xc0000409
Décalage d’erreur : 0x0009eddb
ID du processus défaillant : 0x1500
Heure de début de l’application défaillante : 0x01d8f6c0dc1075bb
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\EaseUS\ENS\ensserver.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\ucrtbase.dll
ID de rapport : db1c6185-0f54-401d-8573-00e1351cfd6f
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (11/12/2022 08:08:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante SystemSettings.exe, version : 10.0.19041.2075, horodatage : 0x4aa1ce82
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.2193, horodatage : 0x7f7062e1
Code d’exception : 0xc000027b
Décalage d’erreur : 0x000000000010fdf2
ID du processus défaillant : 0x3f64
Heure de début de l’application défaillante : 0x01d8f6c109af4e8b
Chemin d’accès de l’application défaillante : C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 28ddabbc-f8a1-4c20-a456-1e4eecabb0bc
Nom complet du package défaillant : windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
ID de l’application relative au package défaillant : microsoft.windows.immersivecontrolpanel

Error: (11/12/2022 07:02:03 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Broadcast Receiver Server...

Error: (11/12/2022 07:02:03 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Wait Workflow Commands request from device.


Erreurs système:
=============
Error: (11/13/2022 12:59:11 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service EaseUS UPDATE SERVICE s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/12/2022 09:02:58 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (11/12/2022 09:02:58 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (11/12/2022 09:02:58 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (11/12/2022 09:02:58 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (11/12/2022 09:02:58 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (11/12/2022 09:02:58 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (11/12/2022 09:01:52 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.


Windows Defender:
================
Date: 2022-11-16 19:07:42
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {4DC376FA-7BCF-4A2F-B748-54827F467EA0}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : DESKTOP-I4NCEFM\phili

Date: 2022-11-16 11:02:34
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {E0565394-475F-4AFC-9074-43BCC491BD40}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2022-11-15 19:02:00
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {3639C86E-BEE5-49A7-AB98-932EEACB9122}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2022-11-15 16:10:45
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {D25CB72A-8DE0-49B7-8D14-77987106F6C8}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : DESKTOP-I4NCEFM\phili

Date: 2022-11-15 09:45:04
Description:
L'accès contrôlé aux dossiers a empêché C:\Users\phili\AppData\Local\Temp\{38cd83d8-96f7-44ae-8f2e-bbfb6112d8e5}\c637e553.exe de modifier la mémoire.
Heure de détection : 2022-11-15T08:45:04.080Z
Utilisateur : DESKTOP-I4NCEFM\phili
Chemin d'accès : \Device\Harddisk0\DR0
Nom du processus : C:\Users\phili\AppData\Local\Temp\{38cd83d8-96f7-44ae-8f2e-bbfb6112d8e5}\c637e553.exe
Version de la veille de sécurité : 1.379.343.0
Version du moteur : 1.1.19800.4
Version du produit : 4.18.2210.6

CodeIntegrity:
===============
Date: 2022-11-16 18:21:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24e1fa57d06c3de9\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-11-16 11:02:35
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2210.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-11-16 10:50:05
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2022-11-16 10:11:19
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Mozilla Firefox\mozavcodec.dll that did not meet the Microsoft signing level requirements.

Date: 2022-11-16 10:11:19
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Mozilla Firefox\mozavutil.dll that did not meet the Microsoft signing level requirements.


==================== Infos Mémoire ===========================

BIOS: ASUSTeK COMPUTER INC. P2540UA.314 12/17/2021
Carte mère: ASUSTeK COMPUTER INC. P2540UA
Processeur: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Pourcentage de mémoire utilisée: 67%
Mémoire physique - RAM - totale: 8077.3 MB
Mémoire physique - RAM - disponible: 2642.5 MB
Mémoire virtuelle totale: 18829.3 MB
Mémoire virtuelle disponible: 11822.04 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:237.31 GB) (Free:41.7 GB) (Model: HFS256G32TND-N210A) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive g: (Google Drive) (Fixed) (Total:17 GB) (Free:5.97 GB) (Model: HFS256G32TND-N210A) FAT32

\\?\Volume{a0d56e27-0d3d-4cfc-85cc-64a5467731bb}\ () (Fixed) (Total:0.89 GB) (Free:0.31 GB) NTFS
\\?\Volume{f995ae45-0ea0-490d-ac0a-06e350b7bf97}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: CCC90887)

Partition: GPT.

==================== Fin de Addition.txt =======================